CVE-2013-7239
Description
memcached before 1.4.17 allows remote attackers to bypass authentication by sending an invalid request with SASL credentials, then sending another request with incorrect SASL credentials.
Risk Information
Base Score
9.1
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score
Exploitation Probability
0.337
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| A high-performance memory object caching system (USN-2080-1) memcached_1.4.13-0ubuntu2.1_i386.deb | Linux |
| A high-performance memory object caching system (USN-2080-1) memcached_1.4.13-0ubuntu2.1_amd64.deb | Linux |
| memcached security update(DSA-2832-1) memcached_1.4.13-0.2+deb7u1_i386.deb | Linux |
| Memcached update (ELSA-2016-2819) memcached-1.4.15-10.el7_3.1.x86_64.rpm | Linux |
| Memcached-devel update (ELSA-2016-2819) memcached-devel-1.4.15-10.el7_3.1.x86_64.rpm | Linux |
| Memcached-devel update (ELSA-2016-2819) memcached-devel-1.4.15-10.el7_3.1.i686.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234